Dependency-Check is an open source tool performing a best effort analysis of 3rd party dependencies;
false positives and false negatives may exist in the analysis performed by the tool. Use of the tool and
the reporting provided constitutes acceptance for use in an AS IS condition, and there are NO warranties,
implied or otherwise, with regard to the analysis or its use. Any use of the tool and the reporting provided
is at the user’s risk. In no event shall the copyright holder or OWASP be held liable for any damages whatsoever
arising out of or in connection with the use of this tool, the analysis performed, or the resulting report.
Scan Information (
show all):
- dependency-check version: 1.2.11
- Report Generated On: Jul 12, 2015 at 23:30:12 EDT
- Dependencies Scanned: 18
- Vulnerable Dependencies: 0
- Vulnerabilities Found: 0
- Vulnerabilities Suppressed: 0
- ...
- CurrentEngineRelease:
- NVD CVE 2002: 11/02/2015 21:51:09
- NVD CVE 2003: 15/04/2015 05:23:13
- NVD CVE 2004: 11/06/2015 04:59:25
- NVD CVE 2005: 01/07/2015 05:28:20
- NVD CVE 2006: 14/05/2015 05:46:37
- NVD CVE 2007: 17/03/2015 05:50:14
- NVD CVE 2008: 04/06/2015 06:31:11
- NVD CVE 2009: 03/07/2015 04:29:23
- NVD CVE 2010: 20/06/2015 05:08:21
- NVD CVE 2011: 04/06/2015 05:36:48
- NVD CVE 2012: 20/06/2015 04:25:12
- NVD CVE 2013: 06/07/2015 04:23:13
- NVD CVE 2014: 09/07/2015 03:49:47
- NVD CVE 2015: 09/07/2015 03:13:12
- NVD CVE Modified: 12/07/2015 20:06:48
- VersionCheckOn: 1436492708243
Display:
Showing Vulnerable Dependencies (click to show all)
Dependencies
aopalliance-1.0.jar
Description: AOP Alliance
License:
Public Domain
File Path: C:\Users\Jeremy\.m2\repository\aopalliance\aopalliance\1.0\aopalliance-1.0.jar
MD5: 04177054e180d09e3998808efa0401c7
SHA1: 0235ba8b489512805ac13a8f9ea77a1ca5ebe3e8
Referenced In Project:
waffle-spring-security3
Evidence
| Source | Name | Value |
|---|
| central | artifactid | aopalliance |
| central | groupid | aopalliance |
| file | name | aopalliance-1.0 |
| jar | package name | aop |
| jar | package name | aopalliance |
| jar | package name | intercept |
| pom | artifactid | aopalliance |
| pom | description | AOP Alliance |
| pom | groupid | aopalliance |
| pom | name | AOP alliance |
guava-18.0.jar
Description:
Guava is a suite of core and expanded libraries that include
utility classes, google's collections, io classes, and much
much more.
Guava has only one code dependency - javax.annotation,
per the JSR-305 spec.
License:
http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\com\google\guava\guava\18.0\guava-18.0.jar
MD5: 947641f6bb535b1d942d1bc387c45290
SHA1: cce0823396aa693798f8882e64213b1772032b09
Referenced In Project:
waffle-spring-security3
Evidence
| Source | Name | Value |
|---|
| central | artifactid | guava |
| central | groupid | com.google.guava |
| file | name | guava-18.0 |
| jar | package name | collect |
| jar | package name | google |
| jar | package name | io |
| jar | package name | util |
| manifest | Bundle-Description | Guava is a suite of core and expanded libraries that include utility classes, google's collections, io classes, and much much more. Guava has only one code dependency - javax.annotation, per the JSR-305 spec. |
| Manifest | bundle-docurl | https://guava-libraries.googlecode.com/ |
| Manifest | Bundle-Name | Guava: Google Core Libraries for Java |
| Manifest | bundle-symbolicname | com.google.guava |
| pom | artifactid | guava |
| pom | description | Guava is a suite of core and expanded libraries that include utility classes, google's collections, io classes, and much much more. Guava has only one code dependency - javax.annotation, per the JSR-305 spec. |
| pom | groupid | com.google.guava |
| pom | groupid | google.guava |
| pom | name | Guava: Google Core Libraries for Java |
| pom | parent-artifactid | guava-parent |
| pom | parent-groupid | com.google.guava |
javax.servlet-api-3.0.1.jar
Description: Java.net - The Source for Java Technology Collaboration
License:
CDDL + GPLv2 with classpath exception: https://glassfish.dev.java.net/nonav/public/CDDL+GPL.html
File Path: C:\Users\Jeremy\.m2\repository\javax\servlet\javax.servlet-api\3.0.1\javax.servlet-api-3.0.1.jar
MD5: 3ef236ac4c24850cd54abff60be25f35
SHA1: 6bf0ebb7efd993e222fc1112377b5e92a13b38dd
Referenced In Project:
waffle-spring-security3
Evidence
| Source | Name | Value |
|---|
| central | artifactid | javax.servlet-api |
| central | groupid | javax.servlet |
| central | version | 3.0.1 |
| file | name | 3.0.1 |
| file | name | javax.servlet-api-3.0.1 |
| jar | package name | http |
| jar | package name | javax |
| jar | package name | servlet |
| manifest | Bundle-Description | Java.net - The Source for Java Technology Collaboration |
| Manifest | bundle-docurl | https://glassfish.dev.java.net |
| Manifest | Bundle-Name | Java Servlet API |
| Manifest | bundle-symbolicname | javax.servlet-api |
| Manifest | Bundle-Vendor | GlassFish Community |
| Manifest | Bundle-Version | 3.0.1 |
| Manifest | extension-name | javax.servlet |
| Manifest | Implementation-Vendor | GlassFish Community |
| Manifest | Implementation-Vendor-Id | org.glassfish |
| Manifest | Implementation-Version | 3.0.1 |
| Manifest | specification-title | Java(TM) Servlet API Design Specification |
| Manifest | specification-vendor | Oracle |
| Manifest | specification-version | 3.0 |
| Manifest (hint) | specification-vendor | sun |
| pom | artifactid | javax.servlet-api |
| pom | groupid | javax.servlet |
| pom | name | Java Servlet API |
| pom | organization name | https://glassfish.dev.java.net
|
| pom | parent-artifactid | jvnet-parent |
| pom | parent-groupid | net.java |
| pom | parent-version | 3.0.1 |
| pom | version | 3.0.1 |
jna-platform-4.1.0.jar
Description: Java Native Access Platform
License:
LGPL, version 2.1: http://www.gnu.org/licenses/licenses.html
ASL, version 2: http://www.apache.org/licenses/
File Path: C:\Users\Jeremy\.m2\repository\net\java\dev\jna\jna-platform\4.1.0\jna-platform-4.1.0.jar
MD5: 533e404eda70bbf8e40de134ffeec95b
SHA1: 23457ad1cf75c2c16763330de5565a0e67b4bc0a
Referenced In Project:
waffle-spring-security3
Evidence
| Source | Name | Value |
|---|
| central | artifactid | jna-platform |
| central | groupid | net.java.dev.jna |
| file | name | jna-platform-4.1.0 |
| jar | package name | jna |
| jar | package name | platform |
| jar | package name | sun |
| jar (hint) | package name | oracle |
| manifest | Bundle-Description | JNA Platform Library |
| Manifest | Bundle-Name | jna-platform |
| Manifest | bundle-requiredexecutionenvironment | J2SE-1.4 |
| Manifest | bundle-symbolicname | com.sun.jna.platform |
| Manifest | Bundle-Vendor | JNA Development Team |
| Manifest | Implementation-Title | com.sun.jna.platform |
| Manifest | Implementation-Vendor | JNA Development Team |
| Manifest | require-bundle | com.sun.jna;bundle-version="4.1.0" |
| Manifest | specification-title | Java Native Access (JNA) |
| Manifest | specification-vendor | JNA Development Team |
| pom | artifactid | jna-platform |
| pom | description | Java Native Access Platform |
| pom | groupid | net.java.dev.jna |
| pom | name | Java Native Access Platform |
jna-4.1.0.jar
Description: Java Native Access
License:
LGPL, version 2.1: http://www.gnu.org/licenses/licenses.html
ASL, version 2: http://www.apache.org/licenses/
File Path: C:\Users\Jeremy\.m2\repository\net\java\dev\jna\jna\4.1.0\jna-4.1.0.jar
MD5: b0e08c9936dc52aa40439c71fcad6297
SHA1: 1c12d070e602efd8021891cdd7fd18bc129372d4
Referenced In Project:
waffle-spring-security3
Evidence
| Source | Name | Value |
|---|
| central | artifactid | jna |
| central | groupid | net.java.dev.jna |
| file | name | jna-4.1.0 |
| jar | package name | jna |
| jar | package name | library |
| jar | package name | native |
| jar | package name | sun |
| jar | package name | win32 |
| jar (hint) | package name | oracle |
| manifest | Bundle-Description | JNA Library |
| Manifest | Bundle-Name | jna |
| Manifest | bundle-nativecode | com/sun/jna/win32-x86/jnidispatch.dll; processor=x86;osname=win32, com/sun/jna/win32-x86-64/jnidispatch.dll; processor=x86-64;osname=win32, com/sun/jna/w32ce-arm/jnidispatch.dll; processor=arm;osname=wince, com/sun/jna/sunos-x86/libjnidispatch.so; processor=x86;osname=sunos, com/sun/jna/sunos-x86-64/libjnidispatch.so; processor=x86-64;osname=sunos, com/sun/jna/sunos-sparc/libjnidispatch.so; processor=sparc;osname=sunos, com/sun/jna/sunos-sparcv9/libjnidispatch.so; processor=sparcv9;osname=sunos, com/sun/jna/aix-ppc/libjnidispatch.a; processor=ppc;osname=aix, com/sun/jna/aix-ppc64/libjnidispatch.a; processor=ppc64;osname=aix, com/sun/jna/linux-ppc/libjnidispatch.so; processor=ppc;osname=linux, com/sun/jna/linux-ppc64/libjnidispatch.so; processor=ppc64;osname=linux, com/sun/jna/linux-x86/libjnidispatch.so; processor=x86;osname=linux, com/sun/jna/linux-x86-64/libjnidispatch.so; processor=x86-64;osname=linux, com/sun/jna/linux-arm/libjnidispatch.so; processor=arm;osname=linux, com/sun/jna/linux-ia64/libjnidispatch.so; processor=ia64;osname=linux, com/sun/jna/freebsd-x86/libjnidispatch.so; processor=x86;osname=freebsd, com/sun/jna/freebsd-x86-64/libjnidispatch.so; processor=x86-64;osname=freebsd, com/sun/jna/openbsd-x86/libjnidispatch.so; processor=x86;osname=openbsd, com/sun/jna/openbsd-x86-64/libjnidispatch.so; processor=x86-64;osname=openbsd, com/sun/jna/darwin/libjnidispatch.jnilib; osname=macosx;processor=x86;processor=x86-64;processor=ppc |
| Manifest | bundle-requiredexecutionenvironment | J2SE-1.4 |
| Manifest | bundle-symbolicname | com.sun.jna |
| Manifest | Bundle-Vendor | JNA Development Team |
| Manifest | Implementation-Title | com.sun.jna |
| Manifest | Implementation-Vendor | JNA Development Team |
| Manifest | specification-title | Java Native Access (JNA) |
| Manifest | specification-vendor | JNA Development Team |
| pom | artifactid | jna |
| pom | description | Java Native Access |
| pom | groupid | net.java.dev.jna |
| pom | name | Java Native Access |
jna-4.1.0.jar: jnidispatch.dll
File Path: C:\Users\Jeremy\.m2\repository\net\java\dev\jna\jna\4.1.0\jna-4.1.0.jar\com\sun\jna\w32ce-arm\jnidispatch.dll
MD5: 57697cbdd321ae7d06f5da04e821f908
SHA1: 67167f2b2fce8db5f9f64a372b0da54730d3ee51
Evidence
| Source | Name | Value |
|---|
| file | name | jnidispatch |
jna-4.1.0.jar: jnidispatch.dll
File Path: C:\Users\Jeremy\.m2\repository\net\java\dev\jna\jna\4.1.0\jna-4.1.0.jar\com\sun\jna\win32-x86-64\jnidispatch.dll
MD5: 06b2f1f909d2436dff20d7a668ef26a9
SHA1: bd1bdda9a91f3b0d9067e323f7394bef933f81f6
Evidence
| Source | Name | Value |
|---|
| file | name | jnidispatch |
jna-4.1.0.jar: jnidispatch.dll
File Path: C:\Users\Jeremy\.m2\repository\net\java\dev\jna\jna\4.1.0\jna-4.1.0.jar\com\sun\jna\win32-x86\jnidispatch.dll
MD5: 05a72ada9247aeb114a9ef01a394b6c4
SHA1: 8b32cc82740fc62afdf5ea211f1ca8bb72269bbf
Evidence
| Source | Name | Value |
|---|
| file | name | jnidispatch |
jcl-over-slf4j-1.7.12.jar
Description: JCL 1.1.1 implemented over SLF4J
File Path: C:\Users\Jeremy\.m2\repository\org\slf4j\jcl-over-slf4j\1.7.12\jcl-over-slf4j-1.7.12.jar
MD5: 5989c932ad8fff557a90f6f9032e57f9
SHA1: adef7a9e1263298255fdb5cb107ff171d07c82f3
Referenced In Project:
waffle-spring-security3
Evidence
| Source | Name | Value |
|---|
| central | artifactid | jcl-over-slf4j |
| central | groupid | org.slf4j |
| file | name | jcl-over-slf4j-1.7.12 |
| jar | package name | impl |
| manifest | Bundle-Description | JCL 1.1.1 implemented over SLF4J |
| Manifest | Bundle-Name | jcl-over-slf4j |
| Manifest | bundle-requiredexecutionenvironment | J2SE-1.5 |
| Manifest | bundle-symbolicname | jcl.over.slf4j |
| Manifest | Bundle-Vendor | SLF4J.ORG |
| Manifest | Implementation-Title | jcl-over-slf4j |
| pom | artifactid | jcl-over-slf4j |
| pom | description | JCL 1.1.1 implemented over SLF4J |
| pom | groupid | org.slf4j |
| pom | groupid | slf4j |
| pom | name | JCL 1.1.1 implemented over SLF4J |
| pom | parent-artifactid | slf4j-parent |
| pom | parent-groupid | org.slf4j |
slf4j-api-1.7.12.jar
Description: The slf4j API
File Path: C:\Users\Jeremy\.m2\repository\org\slf4j\slf4j-api\1.7.12\slf4j-api-1.7.12.jar
MD5: 68910bf95dbcf90ce5859128f0f75d1e
SHA1: 8e20852d05222dc286bf1c71d78d0531e177c317
Referenced In Project:
waffle-spring-security3
Evidence
| Source | Name | Value |
|---|
| central | artifactid | slf4j-api |
| central | groupid | org.slf4j |
| file | name | slf4j-api-1.7.12 |
| jar | package name | slf4j |
| manifest | Bundle-Description | The slf4j API |
| Manifest | Bundle-Name | slf4j-api |
| Manifest | bundle-requiredexecutionenvironment | J2SE-1.5 |
| Manifest | bundle-symbolicname | slf4j.api |
| Manifest | Bundle-Vendor | SLF4J.ORG |
| Manifest | Implementation-Title | slf4j-api |
| pom | artifactid | slf4j-api |
| pom | description | The slf4j API |
| pom | groupid | org.slf4j |
| pom | groupid | slf4j |
| pom | name | SLF4J API Module |
| pom | parent-artifactid | slf4j-parent |
| pom | parent-groupid | org.slf4j |
spring-security-core-3.2.7.RELEASE.jar
Description: spring-security-core
License:
The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\org\springframework\security\spring-security-core\3.2.7.RELEASE\spring-security-core-3.2.7.RELEASE.jar
MD5: 1b6bfc7d9c9c732b239e58d702b4afb9
SHA1: 50c170701f0cc9a99d14a50a7a97ff0c651bab66
Referenced In Project:
waffle-spring-security3
Evidence
| Source | Name | Value |
|---|
| central | artifactid | spring-security-core |
| central | groupid | org.springframework.security |
| central | version | 3.2.7.RELEASE |
| file | name | 3.2.7 |
| file | name | spring-security-core-3.2.7.RELEASE |
| hint analyzer | product | springsource_spring_framework |
| hint analyzer | vendor | vmware |
| jar | package name | core |
| jar | package name | security |
| jar | package name | springframework |
| Manifest | Bundle-Vendor | SpringSource |
| Manifest | Bundle-Version | 3.2.7.RELEASE |
| Manifest | Implementation-Title | org.springframework.security.core |
| Manifest | Implementation-Version | 3.2.7.RELEASE |
| pom | artifactid | spring-security-core |
| pom | groupid | org.springframework.security |
| pom | groupid | springframework.security |
| pom | name | spring-security-core |
| pom | organization name | http://spring.io/
|
| pom | version | 3.2.7.RELEASE |
Related Dependencies
- spring-security-web-3.2.7.RELEASE.jar
spring-aop-3.2.14.RELEASE.jar
Description: Spring AOP
License:
The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\org\springframework\spring-aop\3.2.14.RELEASE\spring-aop-3.2.14.RELEASE.jar
MD5: 28c8d3d109ee5d0a014cfb7d9a034697
SHA1: 1d38ca9c07671773746df608a7d777e2942100ab
Referenced In Project:
waffle-spring-security3
Evidence
| Source | Name | Value |
|---|
| central | artifactid | spring-aop |
| central | groupid | org.springframework |
| central | version | 3.2.14.RELEASE |
| file | name | 3.2.14 |
| file | name | spring-aop-3.2.14.RELEASE |
| jar | package name | aop |
| jar | package name | framework |
| jar | package name | springframework |
| Manifest | Implementation-Title | spring-aop |
| Manifest | Implementation-Version | 3.2.14.RELEASE |
| pom | artifactid | spring-aop |
| pom | groupid | org.springframework |
| pom | groupid | springframework |
| pom | name | Spring AOP |
| pom | organization name | http://springsource.org/spring-framework
|
| pom | version | 3.2.14.RELEASE |
Related Dependencies
- spring-beans-3.2.14.RELEASE.jar
- File Path: C:\Users\Jeremy\.m2\repository\org\springframework\spring-beans\3.2.14.RELEASE\spring-beans-3.2.14.RELEASE.jar
- SHA1: 795595a5a3411cbcd66353073354c57f8f7be2e0
- MD5: 0342d96efec92f533e20e3f0bc57b762
- maven: org.springframework:spring-beans:3.2.14.RELEASE
- spring-context-3.2.14.RELEASE.jar
- File Path: C:\Users\Jeremy\.m2\repository\org\springframework\spring-context\3.2.14.RELEASE\spring-context-3.2.14.RELEASE.jar
- SHA1: 3c3a918ab84fc7960c3824406bdeff7588cf5612
- MD5: a45d2c3d3f1471ef95bfa921be10bd93
- maven: org.springframework:spring-context:3.2.14.RELEASE
- spring-expression-3.2.14.RELEASE.jar
- File Path: C:\Users\Jeremy\.m2\repository\org\springframework\spring-expression\3.2.14.RELEASE\spring-expression-3.2.14.RELEASE.jar
- SHA1: 3192e0808e121f25cd90d63053c37fefcdaace30
- MD5: faba6913fb8b874e39940ccac099b813
- maven: org.springframework:spring-expression:3.2.14.RELEASE
- spring-web-3.2.14.RELEASE.jar
- File Path: C:\Users\Jeremy\.m2\repository\org\springframework\spring-web\3.2.14.RELEASE\spring-web-3.2.14.RELEASE.jar
- SHA1: a01815b0a3c09919630a46c2409488dd78b3c9fd
- MD5: 794f65216887b5c35c95a07d59e5a6df
- maven: org.springframework:spring-web:3.2.14.RELEASE
spring-core-3.2.14.RELEASE.jar
Description: Spring Core
License:
The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\org\springframework\spring-core\3.2.14.RELEASE\spring-core-3.2.14.RELEASE.jar
MD5: 8f72111ba8b642700a3fc85709dd739e
SHA1: 515b3d5c0c4931c4db27aa4cdfbc04541cd33a5b
Referenced In Project:
waffle-spring-security3
Evidence
| Source | Name | Value |
|---|
| central | artifactid | spring-core |
| central | groupid | org.springframework |
| central | version | 3.2.14.RELEASE |
| file | name | 3.2.14 |
| file | name | spring-core-3.2.14.RELEASE |
| hint analyzer | product | springsource spring framework |
| hint analyzer | vendor | SpringSource |
| hint analyzer | vendor | vmware |
| jar | package name | core |
| jar | package name | frame |
| jar | package name | springframework |
| Manifest | Implementation-Title | spring-core |
| Manifest | Implementation-Version | 3.2.14.RELEASE |
| pom | artifactid | spring-core |
| pom | groupid | org.springframework |
| pom | groupid | springframework |
| pom | name | Spring Core |
| pom | organization name | http://springsource.org/spring-framework
|
| pom | version | 3.2.14.RELEASE |